IBM Z Software
Hide about this portal


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Z Multi-Factor Authentication

Showing 11

MFA native Support of Thales eToken PASS without RADIUS

We've successfully tested factor AZFYUBI1 with zMFA. Our preferred factor for production would be AZFTOTP1, this is working fine. But we're currently in process of setting up some support processes (e.g. what will hapen, if somebody lost his phone...
10 months ago in zSecurity / Z Multi-Factor Authentication 2 Not under consideration

improvement for AZFTOTP1 enrollment

Today when you enroll an user for AZTOTP1, you can have 2 ways to add it to your authenticator app on your mobile phone. By default the most are using a QR code, but as alternative you can use the otpauth address by typing it manually into your au...
2 months ago in zSecurity / Z Multi-Factor Authentication 1 Not under consideration

IBM MFA - Add PUSH functionality to IBM Z MFA

We really appreciate that you made OTP-validation on the mainframe possible via IBM TouchToken-factor using mobile-APP : IBM Security Verify.Our users do miss the possibility of PUSH-OTP.This feature that IBM Z MFA is able to perform PUSH, is the ...
about 4 years ago in zSecurity / Z Multi-Factor Authentication 1 Not under consideration

Modify MFA to work with RRSF

Refer to case TS002528641
over 5 years ago in zSecurity / Z Multi-Factor Authentication 1 Not under consideration

New RACF messages indicating Next Token mode

Background - We are migrating from CA Top Secret to IBM RACF, here at our site. We are also migrating from CA AAM to IBM MFA. Under CA Top Secret, we enter "RSA Next Token Mode" after failing 3 attempts to logon. The CA Top Secret throws messages ...
about 5 years ago in zSecurity / Z Multi-Factor Authentication 7 Not under consideration

Allow the processing order of strong factors to be configurable

Strong MFA factor processing order should be allowed to be prioritized by the customer. We don't want to use TOTP all the time.
over 4 years ago in zSecurity / Z Multi-Factor Authentication 0 Not under consideration

Inbound Authentication Should not require Additional Extraneous Characters for Processing

MFA processing should go through the factors allowed to the user to determine based upon input what is appropriate.
over 4 years ago in zSecurity / Z Multi-Factor Authentication 1 Not under consideration

Possibility to specify account names created during MFA Generic TOTP Enrollment

What we've noticed with Generic TOTP is that registration of the account in an authenticator app is based on the issuer (we expected the Realm name to be used), which in our case would result in creation of account “RABO (userid@RABO)” for every s...
over 4 years ago in zSecurity / Z Multi-Factor Authentication 1 Not under consideration

Privileged Identity Management (PIM) Function for MFA for z/OS

Managing privileged mainframe user accounts (Userids) in vaults resident on operating platforms with a lower assurance level than z/OS, does not made good security sense. The mainframe needs a Privileged Identity Management (PIM) solution that run...
about 6 years ago in zSecurity / Z Multi-Factor Authentication 0 Not under consideration

The connection with Radius Server results password invalid

We have installed MFA for z/OS v.1.3 on my system with the objective to use the Generic Radius factor to enable strong authentication on mainframe using the already present Radius infrastructure (based on Fortinet Authenticator) at customer site. ...
over 6 years ago in zSecurity / Z Multi-Factor Authentication 0 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.